Methods and apparatuses for ensuring secure connection in size constrained authentication protocols

摘要

The present invention relates to a method for securely connecting a mobile device (MD) having a credential container (CC) to a server (SV) while using a protocol with data size encoding constraints that prevent using traditional cryptography. , the method further utilizes the deployment of the associated group master key MK11 shared by the server SV and the credential containers CC of the mobile devices MD, and the server random value Rnd to secure The same range of short-term IMSIs (RG1(IMSI)) stored in the deployment of credential containers (CC) of mobile devices (MD) with the same range of short-term IMSIs (RG1(IMSI)) to initiate a localized session an initialization phase using a rIMSI randomly selected from a range of IMSIs (RG1(IMSI)) to enable a server (SV) to generate keys for initiating a secured communication phase. Using the limited payload in the message ATTR(rIMSI)_1 from the first mobile device (MD) to the server (SV) to send, then the credential container (CC) of the mobile device (MD) with the identifier (CCId) of the credential container stored in and transmitted using the limited payload in the message (AUTF(rIMSI, AUTS)_3) from the mobile device (MD) to the server (SV), and to the server (SV) ) as the individualized master key MK12 possessed by the individual keys SK12c and SK12i retrieved by the server SV.